The current state of the application security model is located here: [[Apps/Security]]
A threat model is being documented here: [[B2G_App_Security_Model/Threat_Model]]
WebAPI permissions manager implementation: https://bugzilla.mozilla.org/show_bug.cgi?id=707625
====Design Decisions Made====
* One app per origin (FQDN) where app URL may potentially be a new [[Apps/Security#New_URI_proposal_.28apt:.2F.2F_or_yum:.2F.2F.29|URI type]]
* Multiple App stores
* Apps are peers to their native equivalents from an experience standpoint
* Four types of web applications +